Back to search
CVE-2026-48906
Published: May 27, 2026
Modified: May 27, 2026
PUBLISHED
Description
The vulnerability in the Tassos Framework Plugin allows users to delete arbitrary files on the affected sites.
| Vendor | Product | Versions |
|---|---|---|
tassos.gr | Novarain/Tassos Framework (plg_system_nrframework) | affected 1.0.0-6.0.1 |
tassos.gr | Convert Forms | affected 1.0.0-4.4.12affected 5.0.0-5.1.5 |
tassos.gr | EngageBox | affected 1.0.0-6.3.11affected 7.0.0-7.1.1 |
tassos.gr | Google Structured Data | affected 1.0.0-5.6.11affected 6.0.0-6.1.9 |
tassos.gr | Advanced Custom Fields | affected 1.0.0-2.8.12affected 3.0.0-3.1.3 |
tassos.gr | Smile Pack | affected 1.0.0-1.2.6affected 2.0.0-2.1.0 |
tassos.gr | Tassos Code Snippets | affected 1.0.0 |
tassos.gr | MailChimp Auto-Subscribe | affected 1.0.0-5.0.5affected 5.1.0-5.2.0 |
Weaknesses (CWE)
References
https://tassos.gr
product
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now